Every year, lists of the most common passwords come out. And every year, “123456” and “password” still top the charts. Despite decades of warnings, millions of people continue using the digital equivalent of leaving the house key under the doormat.
Why Weak Passwords Stick Around
Convenience vs memory: People want something easy to recall.
Too many accounts: The average Canadian has dozens of logins — impossible to manage without shortcuts.
False sense of safety: “I’m not important enough to be hacked” — a dangerous myth.
Overcomplicated rules: Systems that demand symbols, numbers, and rotations push people toward predictable patterns.
What Makes a Password Strong?
Length over complexity: A long phrase (“bluecanoeswimsfast2024”) beats a short jumble.
Uniqueness: Each account needs its own password — no repeats.
Password managers: Tools that generate and remember strong logins for you.
Multi-factor authentication (2FA): Adds a backup layer, even if your password leaks.
Canadian Context
Data breaches: Millions of Canadian records are exposed yearly — meaning even “strong” passwords get leaked.
Password fatigue: Government, healthcare, and banking portals often require different credentials, adding to the problem.
Policy shift: Some organizations are moving toward passkeys and biometric login systems.
The Challenges
Human memory: We simply can’t remember 50 unique, complex passwords.
Digital inequality: Not everyone knows about or trusts password managers.
Slow adoption: Businesses and institutions still rely on outdated login systems.
The Opportunities
Shift the narrative: Stop blaming users, start designing better systems.
Education: Teach “use a phrase, not a word” as a simple, memorable rule.
Tech innovation: Wider adoption of passwordless logins, biometrics, or passkeys.
Cultural change: Make strong passwords as normalized as locking your door at night.
The Bigger Picture
Passwords aren’t just keys — they’re the locks on our digital homes. Weak ones don’t just risk individual accounts; they open doors to identity theft, fraud, and systemic breaches.
The Question
If we know “123456” is a joke, how do we move Canadians toward a future where strong, simple, and secure logins are the default — not the exception?
Strong Passwords and the Myth of “123456”
Still the World’s Favourite Password
Every year, lists of the most common passwords come out. And every year, “123456” and “password” still top the charts. Despite decades of warnings, millions of people continue using the digital equivalent of leaving the house key under the doormat.
Why Weak Passwords Stick Around
What Makes a Password Strong?
Canadian Context
The Challenges
The Opportunities
The Bigger Picture
Passwords aren’t just keys — they’re the locks on our digital homes. Weak ones don’t just risk individual accounts; they open doors to identity theft, fraud, and systemic breaches.
The Question
If we know “123456” is a joke, how do we move Canadians toward a future where strong, simple, and secure logins are the default — not the exception?